CPDP2016 will stage more than 60 panels and workshops with a stimulating mix of academics, practitioners, regulators and advocates, as well as multiple side events such as open debates, PechaKucha performances and artistic interventions. Please note that this is a preliminary version of the program which is still in its early stages. Accordingly, some panels may change or be rescheduled.

THURSday 28 january 2016 • grande halle


academic •• policy •• business ••

organised by CPDP

Chair Charles Raab, University of Edinburgh (UK)

Moderator Ivan Szekely, Eotvos Karoly Policy Institute (HU)

Panel John Borking, Borking Consultancy (NL), Marit Hansen, ULD (DE), Amandine Jambert, CNIL (FR), Achim Klabunde, EDPS (EU)

There has been a vivid discussion in recent years of the difficulty that regulators, legislators and others find in keeping abreast of developments in information and communication technologies (ICT) so that their supervision, oversight and sanctions can be based on an adequate understanding of practices and trends. However, there is little systematic knowledge of the present position within Data Protection Authorities (DPAs) and of their outlook on this issue. In exploring this important subject, the panel aims to bring into the discussion some empirical evidence on the current situation. In particular, the panel will discuss the findings of a survey carried out amongst all European national and sub-national DPAs on their knowledge, expertise and capacity regarding ICT, as well as their opinion on future and emerging technologies. The panel will address the following questions:

  • To what extent do DPAs have expertise regarding information and communication technologies?
  • Is this expertise sufficient for the proper handling of cases involving ICT-related aspects?
  • Do DPAs prefer developing their own technical expertise within the DPA, or importing technical expertise from external sources when needed?
  • How do DPAs keep up with new developments in ICT, with special regard to understanding future and emerging technologies (FETs)?

10.00 - Coffee break


academic • policy ••• business •

organised by Privacy International and TACD

Chair Jan Philipp Albrecht, MEP (EU)

Moderator Anna Fielder, Privacy International (UK)

Panel Joseph Alhadeff, Oracle (US), Kristina Irion, IViR-UvA (NL), Cam Kerry, Sidley Austin LLP and Brookings Institution (US), Burcu Kilic, Public Citizen (US), Rupert Schlegelmilch, EC DG Trade (EU)

“Data flows”, or transfers of personal information between countries, have become a mainstay of the global economy. There are increasing pressures to include them into bilateral and multilateral free trade agreements. Such transfers are inexorably linked to local data protection laws which differ widely. Opinions are fiercely divided: some see privacy protection as a barrier to trade and as protectionism that stands in the way of jobs and economic prosperity; while others see it as a fundamental right that, in addition, increases trust in commercial engagement and promotes prosperity and jobs. The EU negotiators for TiSA and TTIP have no mandate to include data protection in the agreements, while the U.S. has made proposals to mandate countries to refrain from imposing unnecessary barriers to data flows across borders and to forbid the local storage of data. In particular, the panel will discuss the following issues:

  • Do we need ‘data flows’ included in trade agreements – especially given other international agreements designed (e.g. OECD, CoE) to ensure transfers while protecting personal data?
  • How can we uphold individuals’ fundamental rights to privacy and data protection while ensuring free trade?
  • What impact will the CJEU judgment on Safe Harbour (Schrems case) have on data flows negotiations in TTIP?
  • The World Trade Organisation (WTO) rules on trade in services (GATS) have a general exception to allow countries to regulate – including for privacy. Is that sufficient and does it provide the necessary guarantees?


academic •• policy •• business ••

organised by IAPP

Moderator Omer Tene, IAPP (US)

Panel Julie Brill, Federal Trade Commission (US), Paul Nemitz, European Commission (EU)

The invalidation of the European Commission’s Safe Harbor decision by the Court of Justice of the European Union has raised the stakes for the transatlantic data debate. With additional judicial decisions expected on both sides of the Atlantic, policymakers have engaged in extensive negotiations to find solutions that address privacy and civil liberties, national security and law enforcement, and industrial and economic concerns. Reconvening a year after their initial meeting on this stage, Federal Trade Commissioner Julie Brill and European Commission Director for Fundamental Rights Paul Nemitz meet to discuss privacy, data flows and the year ahead for data protection.

  • Hear from leading policymakers on the state of play of crossborder data flows between the world’s two largest trading blocks.
  • Engage with FTC and EC leaders on how privacy interacts with national security, law enforcement and economic considerations.
  • Learn the latest about Safe Harbor and the new General Data Protection Regulation.

13.00 - Lunch


BY Martin Schulz, President of the European Parliament


academic •• policy •• business ••

organised by EPIC

Moderator Kristina Irion, IViR-UvA (NL)

Panel Birgitta Jónsdóttir, Member of the Icelandic Parliament (IS), David Lyon, Queens University (CA), Marc Rotenberg, EPIC (US)

Todays accounts of the information economy presumes social progress highlighted by new innovations – such as social network services, global search and smart phone apps. However, the corresponding commodification of personal data is of a magnitude and ubiquity that qualifies as a defining societal condition and signals the onset of a new era: Surveillance capitalism. To Shoshana Zuboff “this new form of information capitalism aims to predict and modify human behavior as a means to produce revenue and market control.” The long-term consequences of this economic transformation may thus be much deeper changes in society than the latest apps. This panel takes a big picture perspective and explores the conditions of surveillance capitalism and how the accumulation of data translates into power and transforms society. In particular, the panel will consider the following questions:

  • What is surveillance capitalism?
  • What are its conditions and drivers?
  • How does the accumulation of data translate into power?
  • What societal changes may eventuate as a result of surveillance capitalism?

15.15 - Coffee break


academic •• policy •• business ••

organised by EDPS

Chair Giovanni Buttarelli, EDPS (EU)

Moderator Jennifer Baker, The Register (UK)

Panel Kenneth Bamberger, University of California (US), Alexander Dix, Berlin Data Protection Commissioner (DE), Frank Pasquale, University of Maryland (US)

This special event on Data Protection Day at CPDP is dedicated to presenting the EDPS Ethics Advisory Group and launching the debate on ethics and dignity in the digital society.

Privacy is an integral part of human dignity. In turn, the right to data protection was conceived of as a way of compensating for the potential erosion of privacy and dignity through large scale personal data processing. Today, individuals are increasingly required to disclose personal information over the Internet in order to participate in social, administrative and commercial affairs whilst they have an ever more limited scope for opting out. New technological possibilities make nearly unlimited data collection and analysis possible, and threaten to undermine human dignity and freedoms.

Traditional privacy and data protection concepts and principles already contain ethical nuances for the protection of dignity, such as in relation to employment and health. But today’s trends have opened an entirely new chapter, and there is a need to explore whether current principles are robust enough for the digital age. The EDPS proposes a thorough, broad and multidisciplinary analysis and establishes a group which will draw on expertise from the fields of ethics and philosophy, sociology, psychology, technology and economics to provide recommendations and inform societal debate on how a free, democratic society should meet the technological challenge. Amongst others, the panel will consider the following questions.

  • • What are the main questions the EDPS Ethics Advisory Group should consider?
  • • How can a long-term perspective be developed relating to the continued state of exception on grounds of ‘security’ which is used to justify the multiple layering of intrusive techniques for the monitoring of individuals’ activity?
  • • How can certain data processing - the processing of genetic data, for example - be not only regulated, but also subjected to an evaluation including wider societal concerns? Are ethics committees a valid instrument in this context?
  • • How can we use innovative thinking to ensure that the existing framework does not fail, and ensure that the “data subject” is treated as an individual and not simply as a consumer or user?


academic •• policy •• business ••

organised by Council of Europe

Chair Maria Michaelidou, Council of Europe (INT)

Moderator Christiana Markou, European University (CY)

Panel David Hoffman, Intel (US), Marius Jammes, AEDH (BE), Sophie Vannier, CNIL (FR), Valérie Verbruggen, Belgian Privacy Commission (BE)

This year marks the 10th Edition of Data Protection Day - as instituted in 2006 by the Council of Europe on the occasion of the anniversary of its Data Protection Convention, more commonly known as ‘Convention 108’. This 28th January is a great opportunity to celebrate the right to Data Protection, to learn about the diverse actors and initiatives taken on this special day and to garner inspiration moving forward. It also gives us an opportunity to assess the results of this awareness-raising exercise a decade after its inception. The panel will:

  • Recall the objective of this celebration, why it matters and the progress made since 2006
  • Showcase some great practices and initiatives
  • Take stock of the difficulties encountered
  • Contribute to the 10th Edition of Data Protection Day!!

18.00 - CoCKTAIL sponsored by EDPS and CoE IN LE VILLAGE

18.30 - DATA PRIVACY DAY: TRANS-ATLANTIC DISCUSSIONS: Developing a Sustainable ‘Big Data’ Ecosystem - Diverse Approaches to the Privacy Economy

organised by Council of Europe, EDPS and the National Cyber Security Alliance

Moderator Giovanni Buttarelli, European Data Protection Supervisor (EU)

Opening remarks Ambassador Torbjørn Frøysnes, Head of Council of Europe Liaison office with the European Union (EU)

Panel in Brussels Julie Brill, Commissioner, U.S. Federal Trade Commission (US), Helge Veum, Deputy Norwegian Data Protection Commissioner (NO), David Hoffman, Associate General Counsel and Global Privacy Officer, Intel Corporation (US), Antoinette Rouvroy, CRIDS (BE)

Panel in Washington, D.C. Daniel Weitzner, Professor and Director of the MIT CSAIL Decentralized Information (US), Martin Abrams, Executive Director and Chief Strategist, Information Accountability Foundation (US)

You can also watch this discussion live online. Register at https://www.eventbrite.com/e/the-state-of-privacy-tickets-19599017188

In 2015, there were impactful as well as pivotal changes regarding privacy in the U.S. and abroad. As the state of privacy continues to evolve rapidly, it’s becoming more mainstream with increased awareness and changing expectations from consumers and business.

The potential societal and economic benefits of big data are substantial; however there is also a potential negative impact, which requires careful management. How do we develop a sustainable ecosystem that utilizes new technologies, spurs innovation, respects equality and privacy?

Speakers from both sides of the Atlantic and from diverse perspectives will have a new and informed transatlantic discussion surrounding mutual approaches to big data and privacy. They will initiate a practical and solutions-focused dialogue addressing the current state and future of privacy. Speakers include European Data Protection Supervisor Giovanni Buttarelli, U.S. Federal Trade Commission (FTC) Commissioner Julie Brill, Deputy Norwegian Data Protection Commissioner Helge Veum and others.

SPonsors AND PARTNERS 2017